Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/6Cf6UHz6GUZVZImUMH_rZv9c2Wg.roa
File: 6Cf6UHz6GUZVZImUMH_rZv9c2Wg.roa (raw, json)
Hash identifier: zVLjoMGmSIBpsl129vznl7BunBpTB4MP1H8aMZyVmEU=
Subject key identifier: E8:27:FA:50:7C:FA:19:46:55:64:89:94:30:7F:EB:66:FF:5C:D9:68
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0C8F
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/6Cf6UHz6GUZVZImUMH_rZv9c2Wg.roa
Signing time: Sun 07 Feb 2021 11:40:05 +0000
ROA not before: Sun 07 Feb 2021 11:40:05 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131627
IP address blocks: 219.91.68.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3215 (0xc8f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Feb 7 11:40:05 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=E827FA507CFA194655648994307FEB66FF5CD968
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:1a:8e:cf:17:c4:c2:51:c1:ed:e8:59:73:b9:
98:da:59:a3:1b:20:aa:16:d5:7c:39:bd:0f:1c:61:
2e:4c:aa:e9:3a:34:c4:d3:5d:49:70:7a:40:79:12:
a2:40:7b:37:85:9e:b5:23:2f:97:1b:f4:b2:9a:78:
8a:31:19:4a:dd:d2:13:8c:43:31:35:e5:42:67:e3:
81:0b:5e:79:96:06:ae:e8:99:5e:f8:8e:7d:96:10:
57:1b:e6:8d:59:cf:f9:9c:0e:d2:d3:0d:19:75:74:
92:22:c6:fc:26:76:b2:af:a7:e7:84:1b:fc:34:5e:
10:36:0e:3f:39:1c:f6:4c:ca:2b:1c:a8:45:13:ee:
4a:f4:35:b2:7c:eb:5d:50:96:6c:47:b0:1b:50:47:
7d:ee:21:45:87:4a:76:29:ad:24:7d:3c:df:66:c3:
e3:3c:ad:0f:88:f2:d1:18:49:2f:98:63:a8:d5:6d:
fc:bc:f0:f2:70:ac:ed:ea:88:d1:9f:8d:ec:dc:d9:
dd:3b:eb:d1:a9:db:b3:69:0c:11:e4:b4:38:20:6b:
a7:7e:ae:f4:8e:fa:07:3c:51:16:a0:9d:a4:02:a2:
32:49:66:f3:0a:64:57:48:2b:a8:c5:33:2c:30:90:
5c:cc:49:e9:07:08:b5:4b:74:89:33:31:27:e6:c3:
e1:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:27:FA:50:7C:FA:19:46:55:64:89:94:30:7F:EB:66:FF:5C:D9:68
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/6Cf6UHz6GUZVZImUMH_rZv9c2Wg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
219.91.68.0/23
Signature Algorithm: sha256WithRSAEncryption
a0:31:3a:60:81:bd:e3:ee:62:8c:b8:a4:15:56:8e:9f:7d:cc:
dc:8f:53:2b:3f:9c:04:a6:50:8b:35:c8:af:5e:13:94:47:c3:
df:e0:5b:a3:6f:38:01:25:5f:db:74:46:53:8e:c1:12:24:df:
58:a2:0e:5c:c7:5e:f6:ed:5c:79:27:9e:1f:09:1a:c5:0f:9d:
68:21:ff:63:f7:47:bf:59:a8:f4:47:d2:bd:43:60:01:5d:30:
a0:72:e9:17:7c:b0:e7:70:6c:97:89:8b:b9:91:02:72:0e:2e:
50:9b:0b:ac:8f:2f:ce:c0:01:a7:f9:4f:81:c4:d4:44:66:4d:
a9:22:32:58:64:5f:7f:7a:2e:fc:2a:79:44:85:f7:61:b6:f0:
dd:ea:48:63:83:56:ee:98:69:5c:92:c4:7b:ea:05:0f:e7:f9:
25:46:89:cc:2c:28:fa:4e:6f:0c:68:92:91:46:b5:c2:2c:18:
2b:f6:61:5c:99:b7:ee:df:83:b3:db:ef:c8:c8:e3:fd:09:87:
1b:a6:0e:8f:03:a4:f4:29:8c:ad:1a:c0:3b:3d:34:72:23:d2:
4d:90:c9:49:3f:8c:b1:c8:54:0c:32:9d:c1:12:ff:0e:d0:34:
19:c4:39:a0:3b:79:8c:a3:a8:d8:61:19:c1:97:11:4f:68:f5:
f4:92:60:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:31 2024 by rpki-client on console-fra.rpki-client.org